CVE-2019-5297

3 documents3 sources

Severity

4.6MEDIUM

EPSS

0.0%

top 92.32%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Huawei Emily-l29c Firmware Huawei Emily-l29c

Timeline

PublishedJun 4

Latest updateMay 24

Description

Emily-L29C Huawei phones versions earlier than 9.0.0.159 (C185E2R1P12T8) have a Factory Reset Protection (FRP) bypass security vulnerability. Before the FRP account is verified and activated during the reset process, the attacker can perform some special operations to bypass the FRP function and obtain the right to use the mobile phone.

CVSS vector

CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:NExploitability: 0.9 | Impact: 3.6

Affected Packages2 packages

▶NVDhuawei/emily-l29c_firmware< 9.0.0.159

▶CVEListV5huawei/emily-l29cVersion Earlier Than 9.0.0.159(C185E2R1P12T8)

🔴Vulnerability Details

GHSA

GHSA-x6xf-9vgf-7wgc: Emily-L29C Huawei phones versions earlier than 9↗2022-05-24

▶

CVEList

CVE-2019-5297: Emily-L29C Huawei phones versions earlier than 9↗2019-06-04

▶